Universiti Teknologi Malaysia Institutional Repository

Opcodes histogram for classifying metamorphic portable executables malware

Masrom, Maslin and Ibrahim, Suahimi (2012) Opcodes histogram for classifying metamorphic portable executables malware. In: The International Conference on E-Learning and E-Technologies in Education (ICEEE 2012), 24-26 Sept 2012, Lodz, Poland.

Full text not available from this repository.

Official URL: http://ieeexplore.ieee.org/document/6333411/


Malware writers attempt to generate different shapes of a malware to evade the signature-based scanners. As the number of variants of a metamorphic malware is increased, the analysis of all variants and selecting the appropriate signature and updating the database of the antivirus becomes more tiresome and time-consuming. Furthermore, for automated generated metamorphic viruses, which utilize the virus kits to produce different instances, sometime it is not possible to analyze all of them. Therefore, use of some classification methods to speed up the analysis process is necessary. In this paper, we show that how the histogram of instructions opcodes can help us in classification of metamorphic virus family variants.

Item Type:Conference or Workshop Item (Paper)
Uncontrolled Keywords:Histograms, malware, educational institutions
Subjects:T Technology > T Technology (General) > T58.5-58.64 Information technology
Divisions:Razak School of Engineering and Advanced Technology
ID Code:34159
Deposited By: Liza Porijo
Deposited On:09 Aug 2017 08:34
Last Modified:28 Sep 2017 06:49

Repository Staff Only: item control page